F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

Icon for Nimbostratus rank

Nimbostratus

Aug 20, 2013

BEAST ATTACK

Has the Beast Attack vulnerabilty been solved with 11.4 version? http://support.f5.com/kb/en-us/solutions/public/13000/400/sol13400

3 Replies

nitass
Employee
Aug 20, 2013
Has the Beast Attack vulnerabilty been solved with 11.4 version?

as i understand, no. to mitigate, we have to use tls1.2 or, if tls1.2 is not available, stream cipher instead of block based cipher such as rc4-sha.
Kevin_Stewart
Employee
Aug 20, 2013
Have you seen this:

F5 Threat Mitigation: BEAST

Enforcing TLSv1.2 is one option, but ultimately to protect against the underlying CSRF and not alienate a bunch of customers that can't support TLSv1.2, you need a web application firewall like ASM.
David_Haupt_130
Nimbostratus
Aug 20, 2013
I think Ivan Ristic has some pretty solid advice: http://blog.ivanristic.com/2013/03/rc4-in-tls-is-broken-now-what.html

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

Community Articles

application delivery

container ingress services

F5 Architecture Track Sessions - AppWorld 2026

DevCentral News

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5